chunking_advertise_hosts =
primary_hostname = server1.example.com
+.ifdef _HAVE_DMARC
+dmarc_tld_file =
+.endif
+
# ----- Main settings -----
acl_smtp_rcpt = check_recipient
acl_smtp_data = check_data
-log_selector = +tls_peerdn
+log_selector = +tls_peerdn +received_recipients
remote_max_parallel = 1
tls_advertise_hosts = *
{DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key}\
fail}
-tls_ocsp_file = OCSP
+tls_ocsp_file = RETURN
# ------ ACL ------
logger:
accept condition = ${if !eq {msg} {${listextract{1}{$event_name}}}}
+ accept condition = ${if eq {host} {${listextract{2}{$event_name}}}}
warn logwrite = client ocsp status: $tls_out_ocsp \
(${listextract {${eval:$tls_out_ocsp+1}} \
{notreq:notresp:vfynotdone:failed:verified}})
condition = ${if eq {SERVER}{server}{no}{yes}}
retry_use_local_part
transport = send_to_server${if eq{$local_part}{nostaple}{1} \
- {${if eq{$local_part}{norequire} {2} \
+ {${if match{$local_part}{norequire} {2} \
{${if eq{$local_part}{smtps} {4}{3}}} \
}}}
allow_localhost
hosts = HOSTIPV4
port = PORT_D
+ hosts_try_fastopen = :
tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem
tls_verify_cert_hostnames =
hosts_require_tls = *
allow_localhost
hosts = HOSTIPV4
port = PORT_D
+ hosts_try_fastopen = :
tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem
tls_verify_cert_hostnames =
hosts_require_tls = *
allow_localhost
hosts = 127.0.0.1
port = PORT_D
+ hosts_try_fastopen = :
helo_data = helo.data.changed
tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem
tls_verify_cert_hostnames =
allow_localhost
hosts = 127.0.0.1
port = PORT_D
+ hosts_try_fastopen = :
helo_data = helo.data.changed
tls_verify_certificates = DIR/aux-fixed/exim-ca/example.com/CA/CA.pem
tls_verify_cert_hostnames =